January 2023 Summaries
3 posts from Kinde
Filter
Month:
Year:
Post Summaries
Back to Blog
Kinde is dedicated to web accessibility by integrating it into their design and development processes, aiming to conform to the WCAG 2.1 AA standards. They prioritize accessibility in their design system and utilize tools like axe-core and Lighthouse to conduct automated tests alongside manual evaluations using screen readers and keyboard navigation. Kinde's authentication pages, including "Sign in" and "Sign up," are optimized for accessibility, scoring highly in audits and designed to be navigable with assistive technologies. While their Page builder allows for customization, Kinde ensures accessibility by controlling design aspects and addressing potential issues like color contrast. With the upcoming WCAG 2.2 update, Kinde plans to adopt new criteria, such as Accessible Authentication, emphasizing passwordless authentication to remove cognitive barriers. The company remains committed to enhancing accessibility across their product and seeks ongoing feedback to improve user experience for those using assistive technologies.
Jan 27, 2023
1,804 words in the original blog post.
Attackers often target digital products by probing their defenses, beginning with mapping out the product's digital presence and its vulnerabilities. This text emphasizes the importance of understanding and minimizing a product's attack surface, particularly for SaaS companies operating in the public cloud with remote teams. An attack surface is the total number of potential unauthorized access points, and companies should document what they know, use open-source tools to identify vulnerabilities, and automate scanning processes. Additionally, email security is crucial to protect a brand's communication channels from threats like spoofing and phishing. Implementing open standards such as SPF, DKIM, and DMARC can help prevent these attacks, with DMARC policies gradually moving from monitoring to quarantine to rejection to balance security and system functionality. The text provides insights into tools and practices for securing both digital assets and communication channels, highlighting the importance of continuously monitoring and updating security measures to protect against evolving threats.
Jan 17, 2023
1,091 words in the original blog post.
A workstation serves as an essential hub for operations, and maintaining a clear separation between work and personal data is crucial for security. Basic security measures, such as setting strong device passwords and enabling disk encryption, are essential to protect company data in the event of device theft or loss. As startups grow, implementing Mobile Device Management (MDM) tools becomes necessary to maintain a standard security baseline across all company devices, although there is an overhead in managing these tools. Regular operating system updates and endpoint protection are vital to defend against vulnerabilities and malware, with endpoint detection and response tools providing advanced threat monitoring and response capabilities for rapidly scaling companies. Kinde, a small team, uses Pareto Security to validate basic security settings and Crowdstrike's antivirus for comprehensive protection, ensuring devices remain secure and compliant with company standards.
Jan 06, 2023
1,119 words in the original blog post.